Let's admit it: compliance is boring, but needed. When your Azure environment grows, the complexity grows with it. How are you going to ensure your developers don't leave storage accounts open to the public internet? How will you ensure app services only accept HTTPS traffic? What about cost management, which team owns this resource group?

In this session, we will cover this in depth so you can sleep well knowing your environment is secure, cost-efficient and compliant. The following topics will be covered:
- Creating a logical grouping of your subscriptions with management groups.
- Setting up policies, both built-in and custom policies.
- Grouping policies together in initiatives.
- Monitoring compliance and dealing with non-compliance through remediation.
- Sending event grid events when things become non-compliant.
- Automating policy changes with Bicep and Pipelines.
- Bonus: Using tags to ensure ownership, then applying cost management with team-based budgets.